Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
File: XX2xSVjPTXheWe9cbGefjvVMHYs.mft (raw, json)
Hash identifier: SfImWMhxEPDshmOJ0y2F+jWKaSI3rEGE0vQmHhhFj8Y=
Subject key identifier: 1D:2B:EC:48:A1:55:B4:B1:FE:16:B3:90:B2:4C:70:50:A5:F1:24:E1
Authority key identifier: 5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
Certificate issuer: /CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Certificate serial: 01976BBD81CDAD8D0A08DBCE9AEA01FA912E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
Manifest number: 0576
Signing time: Sat 14 Jun 2025 00:01:11 +0000
Manifest this update: Sat 14 Jun 2025 00:01:11 +0000
Manifest next update: Sun 15 Jun 2025 00:01:11 +0000
Files and hashes: 1: XX2xSVjPTXheWe9cbGefjvVMHYs.crl (hash: k9s3TgaEIQ6cIyl9vbs0omNYbjW14mGqyxKWxdb1BxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:81:cd:ad:8d:0a:08:db:ce:9a:ea:01:fa:91:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Validity
Not Before: Jun 14 00:01:11 2025 GMT
Not After : Jun 15 00:01:11 2025 GMT
Subject: CN=1d2bec48a155b4b1fe16b390b24c7050a5f124e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fc:e6:fe:dc:25:6f:1c:d9:22:19:c4:e6:7e:
24:75:2e:c7:f1:f8:bb:32:0c:79:5f:a4:ac:74:33:
a3:a5:b8:26:9c:0e:b0:48:dd:ee:11:68:ed:ce:50:
fe:b2:eb:5d:3e:b7:11:29:a9:17:a9:8d:a2:cb:54:
f4:23:8c:ac:c6:b6:36:a6:4a:cf:33:26:6b:84:1a:
b8:a5:e5:66:cd:13:8b:8d:15:5b:cc:3e:60:5f:58:
d9:5d:02:6c:f1:a9:86:63:29:80:0f:3a:f8:c9:ec:
c2:a1:11:05:8c:15:e4:28:69:07:63:25:d1:7b:ae:
1b:8f:86:3f:a5:0a:8f:75:b7:db:1b:da:25:32:cd:
6a:22:42:5a:95:36:e5:3e:50:9d:3c:cd:f6:ce:8a:
bf:8e:c1:2b:e6:c4:87:48:b3:1e:4c:15:c7:39:2d:
32:a7:cb:b0:db:b0:5d:2d:ab:f0:79:8d:f8:4a:3b:
43:67:8e:94:6b:66:c0:8f:11:e5:16:46:80:23:aa:
be:3a:59:dc:89:38:37:11:5a:c0:fb:35:4c:87:d4:
d7:00:ec:83:c1:a4:1e:8d:82:88:78:3f:16:89:3b:
de:b4:f8:0a:b2:d1:04:42:aa:c9:72:61:ac:ea:c3:
ff:a9:c0:4f:5d:77:5a:ec:60:69:84:ce:30:b4:b3:
f0:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:2B:EC:48:A1:55:B4:B1:FE:16:B3:90:B2:4C:70:50:A5:F1:24:E1
X509v3 Authority Key Identifier:
keyid:5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:3d:04:73:e1:43:31:a7:ca:3e:f0:7d:10:12:81:91:11:df:
ac:31:a9:e0:f4:16:5b:ec:fc:31:61:c6:8f:a3:af:e3:05:b9:
00:53:96:53:ff:1f:99:74:bc:bf:5b:5e:47:30:d0:c9:5b:0d:
2a:fa:10:3b:c1:5b:ad:88:97:08:ce:dc:fe:9e:dc:9e:9c:09:
b3:72:58:b6:4d:29:f2:78:f2:15:57:ee:3b:27:94:6c:18:83:
da:6e:6e:31:1c:c5:75:40:64:d3:45:e9:5d:a9:b1:8d:be:19:
1f:d4:6a:da:d1:54:26:4a:ef:42:47:64:a8:15:84:51:7e:83:
f4:7c:96:01:ea:0f:5f:28:a9:d2:ca:4c:26:e4:15:7b:1e:de:
76:85:42:a6:fc:04:88:f2:14:14:89:dc:00:16:8c:c7:07:50:
ea:fc:d9:9a:9d:08:3d:6a:60:11:e8:0e:78:a0:9a:7f:94:5d:
71:71:c8:31:17:9d:0f:ff:e8:f2:69:44:b3:78:34:67:d8:01:
b2:ec:6b:89:9f:79:88:53:b0:64:70:c0:e9:8a:ea:6a:7f:3c:
55:d5:49:66:92:6d:51:e5:73:7c:fe:54:f9:55:b6:e0:7a:bd:
8c:25:6c:11:13:88:50:99:8f:80:cc:87:f1:6b:80:ce:8d:90:
1d:82:b9:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:54:56 2025 by rpki-client